Control flow analysis in scheme
PLDI '88 Proceedings of the ACM SIGPLAN 1988 conference on Programming Language design and Implementation
Set-based analysis of ML programs
LFP '94 Proceedings of the 1994 ACM conference on LISP and functional programming
Characterizing browsing strategies in the World-Wide Web
Proceedings of the Third International World-Wide Web conference on Technology, tools and applications
Componential set-based analysis
ACM Transactions on Programming Languages and Systems (TOPLAS)
Model checking
The influence of browsers on evaluators or, continuations to program web servers
ICFP '00 Proceedings of the fifth ACM SIGPLAN international conference on Functional programming
Assertions to better specify the amazon bug
SEKE '02 Proceedings of the 14th international conference on Software engineering and knowledge engineering
Programming the Web with High-Level Programming Languages
ESOP '01 Proceedings of the 10th European Symposium on Programming Languages and Systems
Model Checking the World Wide Web
CAV '01 Proceedings of the 13th International Conference on Computer Aided Verification
Automatically Restructuring Programs for the Web
Proceedings of the 16th IEEE international conference on Automated software engineering
Modular Verification of Open Features Using Three-Valued Model Checking
Automated Software Engineering
FLAVERS: a finite state verification technique for software systems
IBM Systems Journal
ESOP'03 Proceedings of the 12th European conference on Programming
Modeling and verification of adaptive navigation in web applications
ICWE '06 Proceedings of the 6th international conference on Web engineering
Specification and verification of data-driven Web applications
Journal of Computer and System Sciences
Customizable verifiers for web applications and their implementation
CEA'07 Proceedings of the 2007 annual Conference on International Conference on Computer Engineering and Applications
Automated identification of parameter mismatches in web applications
Proceedings of the 16th ACM SIGSOFT International Symposium on Foundations of software engineering
Customizable pattern-oriented verifiers for web applications
WSEAS Transactions on Information Science and Applications
Web application modeling for testing and analysis
Proceedings of the 2008 Foundations of Software Engineering Doctoral Symposium
Using static analysis for Ajax intrusion detection
Proceedings of the 18th international conference on World wide web
Automatic verification for interactive graphical programs
Proceedings of the Eighth International Workshop on the ACL2 Theorem Prover and its Applications
Flapjax: a programming language for Ajax applications
Proceedings of the 24th ACM SIGPLAN conference on Object oriented programming systems languages and applications
Web Verification: Perspective and Challenges
Electronic Notes in Theoretical Computer Science (ENTCS)
A survey of analysis models and methods in website verification and testing
ICWE'07 Proceedings of the 7th international conference on Web engineering
The WebTaskModel approach to web process modelling
TAMODIA'07 Proceedings of the 6th international conference on Task models and diagrams for user interface design
Towards automatic verification of web-based SOA applications
APWeb'08 Proceedings of the 10th Asia-Pacific web conference on Progress in WWW research and development
Proceedings of the IEEE/ACM international conference on Automated software engineering
Automated driver generation for analysis of web applications
FASE'11/ETAPS'11 Proceedings of the 14th international conference on Fundamental approaches to software engineering: part of the joint European conferences on theory and practice of software
MDA and analysis of web applications
TEAA'05 Proceedings of the 31st VLDB conference on Trends in Enterprise Application Architecture
Process-aware continuation management in web applications
Proceedings of the 27th Annual ACM Symposium on Applied Computing
Rubicon: bounded verification of web applications
Proceedings of the ACM SIGSOFT 20th International Symposium on the Foundations of Software Engineering
A formal approach for run-time verification of web applications using scope-extended LTL
Information and Software Technology
| Hi-index | 0.00 |
Web programs are important, increasingly representing the primary public interfaces of commercial organizations. Unfortunately, Web programs also exhibit numerous flaws. In addition to the usual correctness problems faced by software, Web programs must contend with numerous subtle user operations such as clicking the Back button or cloning and submitting a page multiple times. Many existing Web verification tools fail to even consider, much less effectively handle, these operations. This paper describes a model checker designed to identify errors in Web software. We present a technique for automatically generating novel models of Web programs from their source code; these models include the additional control flow enabled by these user operations. In this technique, we exploit a constraint-based approach to avoid overapproximating this control flow; this approach allows us to evade exploding the size of the model. Further, we present a powerful base property language that permits specification of useful Web properties, along with several property idioms that simplify specification of the most common Web properties. Finally, we discuss the implementation of this model checker and a study of its effectiveness.